CAPI uses PVK format for private keys. You can find out more information here: http://www.drh-consultancy.demon.co.uk/pvk.html http://www.drh-consultancy.demon.co.uk/pkcs12faq.html
I modified original pvk program to proper work with CryptImportKey. http://lrn.ru/~mouse/pvk-0.12-alt.tar.bz2 Run it as: pvk -in private.pem -out private.pvk -topvk -nocrypt -keyonly Last argument is my modification which creates proper PVK file to use it with CryptImportKey. On Sun, Dec 04, 2005 at 01:41:03AM -0500, Han Jun Li wrote: > Hi, > I have created a plugin for OpenSSL which reads a certificate > through Microsoft's CryptoAPI. The problem is that the private key is > not > returned and I just have a handle to it. During the handshake with a Java > JSSE client, I get an error of BAD_MAC. If the certificate was stored as a > PEM file with the private key accessible, everything works ok. > > Does anyone have success using Java Client to talk to OpenSSL using > a CryptoAPI stored certificate? Any help will be greatly appreciated! > Thanks! > > /han > > > ______________________________________________________________________ > OpenSSL Project http://www.openssl.org > User Support Mailing List openssl-users@openssl.org > Automated List Manager [EMAIL PROTECTED] -- mouse ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
